CVE-2006-2894 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2006-2894

CVE-2006-2894

June 07, 2006

Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and other versions before 1.1.5, and Netscape 8.1 and earlier allow user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename in a text box and using the OnKeyDown, OnKeyPress, and OnKeyUp Javascript keystroke events to change the focus and cause those characters to be inserted into a file upload input control, which can then upload the file when the user submits the form.

Related Resources (46)

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046610.html

http://www.securityfocus.com/archive/1/482932/100/200/threaded

https://people.canonical.com/~ubuntu-security/cve/CVE-2006-2894

http://securitytracker.com/id?1018837

http://secunia.com/advisories/27335

http://www.vupen.com/english/advisories/2008/0083

http://www.mozilla.org/security/announce/2007/mfsa2007-32.html

http://www.securityfocus.com/archive/1/482876/100/200/threaded

http://secunia.com/advisories/21532

http://www.mandriva.com/security/advisories?name=MDKSA-2006:143

http://secunia.com/advisories/20442

http://archives.neohapsis.com/archives/bugtraq/2007-02/0187.html

http://secunia.com/advisories/27403

http://securityreason.com/securityalert/1059

http://lists.virus.org/full-disclosure-0702/msg00225.html

http://lcamtuf.coredump.cx/focusbug/

http://secunia.com/advisories/27414

http://www.vupen.com/english/advisories/2007/3544

http://www.gnucitizen.org/blog/browser-focus-rip

http://www.novell.com/linux/security/advisories/2007_57_mozilla.html

http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:202

https://issues.rpath.com/browse/RPL-1858

http://www.vupen.com/english/advisories/2006/2163

http://www.securityfocus.com/archive/1/482925/100/0/threaded

http://secunia.com/advisories/20467

http://secunia.com/advisories/27298

http://www.ubuntu.com/usn/usn-536-1

http://secunia.com/advisories/20470

http://secunia.com/advisories/27387

https://usn.ubuntu.com/535-1/

http://www.vupen.com/english/advisories/2006/2162

https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

http://secunia.com/advisories/20472

http://www.vupen.com/english/advisories/2006/2160

http://www.vupen.com/english/advisories/2006/2164

https://bugzilla.mozilla.org/show_bug.cgi?id=56236

http://www.mandriva.com/security/advisories?name=MDKSA-2006:145

http://www.securityfocus.com/bid/18308

https://bugzilla.mozilla.org/show_bug.cgi?id=370092

http://secunia.com/advisories/27383

http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1

https://bugzilla.mozilla.org/show_bug.cgi?id=290478

http://archives.neohapsis.com/archives/bugtraq/2007-02/0166.html

http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html

http://www.thanhngan.org/fflinuxversion.html

Do you need more information?

CVSS v4

Base Score:

6.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

LOW

Vulnerable System Integrity

LOW

Vulnerable System Availability

NONE

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

CVSS v2

Base Score:

4

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

Weakness Type (CWE)

Improper Input Validation

EPSS

Base Score:

6.91